$ rpki-client -vvf rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft File: UjrFjamEDQscqom9_54NzkZ2fEo.mft (raw, json) Hash identifier: xPMQUL0G1gcLOCmtApmDKSrBVO/zaHy7iShn+SQnN58= Subject key identifier: 80:3B:A8:1F:B9:5E:95:C0:55:74:00:70:F4:EE:5D:04:D5:91:28:95 Authority key identifier: 52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A Certificate issuer: /CN=A9124B27/serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft Manifest number: 5E Signing time: Tue 17 Jun 2025 06:03:19 +0000 Manifest this update: Tue 17 Jun 2025 06:03:19 +0000 Manifest next update: Tue 24 Jun 2025 06:03:19 +0000 Files and hashes: 1: UjrFjamEDQscqom9_54NzkZ2fEo.crl (hash: Oeut1gIgMeKTBt6VuJCXVbxmcN88IS/kaJZ+fXb7TEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:03:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124B27, serialNumber=523AC58DA9840D0B1CAA89BDFF9E0DCE46767C4A Validity Not Before: Jun 17 06:03:19 2025 GMT Not After : Jun 24 06:03:19 2025 GMT Subject: CN=68510527-92ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:74:27:6b:15:a8:ea:e4:77:ad:b7:2c:c2:11: f0:f1:de:7b:25:73:a8:45:1a:a9:ed:20:5e:55:8a: c9:e5:d6:cd:1c:fb:b4:b0:ae:73:d1:00:27:1e:c2: 07:3f:c5:7b:29:b5:6e:f6:3e:61:e0:2a:4f:24:62: 6a:d7:aa:f9:dc:ed:30:23:b4:b3:d9:20:c3:a2:53: b0:d7:4b:ad:4c:71:45:e1:a1:d9:f4:cd:03:26:88: dd:0d:8d:00:cd:2c:67:93:b5:ca:6a:34:0d:30:09: 9b:cd:42:2a:6e:f9:9d:95:25:0c:4f:c5:4a:ef:3a: 5d:2e:9d:53:4c:25:7c:51:80:e8:4b:d3:1c:f9:ee: 90:ca:35:eb:c5:59:16:33:95:21:fd:b1:ca:3e:8d: 5d:6b:35:e1:64:6b:dc:f7:8a:d1:85:2f:50:6a:18: de:6d:4e:1c:b8:10:01:78:e3:1e:d3:dc:41:3c:b8: 60:0d:47:cb:26:a0:9f:ee:31:0e:d4:ec:8b:ba:21: a2:72:f8:d3:45:2f:08:62:c0:75:0f:0f:bf:c9:d5: 4c:a4:ab:07:00:0b:cf:3a:fc:c9:1e:4f:24:ec:3b: 61:73:e6:f8:0e:db:60:1c:c5:08:08:ba:82:9d:3c: 21:a0:3b:70:49:07:ef:03:09:23:00:b1:80:58:bf: a3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:3B:A8:1F:B9:5E:95:C0:55:74:00:70:F4:EE:5D:04:D5:91:28:95 X509v3 Authority Key Identifier: keyid:52:3A:C5:8D:A9:84:0D:0B:1C:AA:89:BD:FF:9E:0D:CE:46:76:7C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UjrFjamEDQscqom9_54NzkZ2fEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124B27/500618DCC6E811EF87AE690DC4F9AE02/UjrFjamEDQscqom9_54NzkZ2fEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:0a:ff:89:a5:1b:c3:41:b7:5a:31:7b:86:9d:7e:69:63:01: 7f:3b:bc:0b:6c:1b:8c:a8:8e:8f:0d:b7:62:e1:b8:1c:5e:47: 5e:4e:00:75:aa:29:e6:22:85:87:3a:3a:be:ea:9f:de:7c:4b: bb:ee:3a:e6:ce:51:9e:3d:84:fb:7c:6f:06:81:30:a4:e6:8a: 84:29:62:6d:35:6d:97:3c:b7:88:ac:6c:4d:c8:ff:44:41:7d: 42:7f:8b:e2:d2:95:b2:9d:7f:11:3d:ce:6d:82:89:0f:96:d3: cb:49:ab:a1:2b:fa:0b:25:ce:79:0e:74:5e:96:7b:11:ca:2d: 17:c6:33:09:e9:93:45:26:63:1c:de:3f:80:ad:95:3e:fd:d9: d0:d7:91:1e:a4:df:bb:1e:ed:ba:5d:bf:a8:5c:ca:1c:aa:a3: cb:cb:04:68:fe:44:a9:aa:dc:56:74:58:44:5c:b0:9e:29:c2: da:18:fb:4f:7c:0f:38:5c:80:76:8d:81:29:27:a1:e2:ec:16: f0:43:81:67:1f:5f:7c:25:6f:33:48:c9:2c:ef:ec:87:3d:d7: c8:a3:d0:b3:3a:9d:7b:de:b0:a2:77:f7:df:41:d9:14:10:c1: 70:c7:ac:82:95:47:ff:53:a3:e3:f7:3c:c8:28:6a:d7:37:bd: c0:16:1d:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NEIyNzExMC8GA1UEBRMoNTIzQUM1OERBOTg0MEQwQjFDQUE4OUJERkY5RTBEQ0U0 Njc2N0M0QTAeFw0yNTA2MTcwNjAzMTlaFw0yNTA2MjQwNjAzMTlaMBgxFjAUBgNV BAMTDTY4NTEwNTI3LTkyY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqdCdrFajq5HettyzCEfDx3nslc6hFGqntIF5Visnl1s0c+7SwrnPRACcewgc/ xXsptW72PmHgKk8kYmrXqvnc7TAjtLPZIMOiU7DXS61McUXhodn0zQMmiN0NjQDN LGeTtcpqNA0wCZvNQipu+Z2VJQxPxUrvOl0unVNMJXxRgOhL0xz57pDKNevFWRYz lSH9sco+jV1rNeFka9z3itGFL1BqGN5tThy4EAF44x7T3EE8uGANR8smoJ/uMQ7U 7Iu6IaJy+NNFLwhiwHUPD7/J1UykqwcAC886/MkeTyTsO2Fz5vgO22AcxQgIuoKd PCGgO3BJB+8DCSMAsYBYv6O3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgDuoH7le lcBVdABw9O5dBNWRKJUwHwYDVR0jBBgwFoAUUjrFjamEDQscqom9/54NzkZ2fEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0QjI3LzUwMDYxOERDQzZF ODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFzY3FvbTlfNTROemtaMmZF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVWpyRmphbUVEUXNjcW9tOV81NE56a1oyZkVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0 QjI3LzUwMDYxOERDQzZFODExRUY4N0FFNjkwREM0RjlBRTAyL1VqckZqYW1FRFFz Y3FvbTlfNTROemtaMmZFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHkK/4mlG8NBt1oxe4adfmljAX87vAtsG4yojo8Nt2LhuBxeR15OAHWq KeYihYc6Or7qn958S7vuOubOUZ49hPt8bwaBMKTmioQpYm01bZc8t4isbE3I/0RB fUJ/i+LSlbKdfxE9zm2CiQ+W08tJq6Er+gslznkOdF6WexHKLRfGMwnpk0UmYxze P4CtlT792dDXkR6k37se7bpdv6hcyhyqo8vLBGj+RKmq3FZ0WERcsJ4pwtoY+098 DzhcgHaNgSknoeLsFvBDgWcfX3wlbzNIySzv7Ic918ij0LM6nXvesKJ3999B2RQQ wXDHrIKVR/9To+P3PMgoatc3vcAWHU8= -----END CERTIFICATE-----Generated at Tue Jun 17 23:46:25 2025 by rpki-client